IBM WebSphere Application Server Liberty and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. This affects The IBM® Engineering Lifecycle Engineering product using WebSphere Application Server Liberty versions 22.0.0.7 and prior.
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Product(s) | Version(s) |
---|---|
ELM | 7.0.2 |
ELM | 7.0.1 |
Versions Affected: 17.0.0.3 - 23.0.0.5
If any of the mentioned affected product is deployed on one of the above versions, Please follow the instruction given in the following article.
Link : <https://www.ibm.com/support/pages/node/6602015>
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm engineering lifecycle management base | eq | 7.0.1 | |
ibm engineering lifecycle management base | eq | 7.0.2 |